abdel adim oisfi vulnerabilities and exploits

(subscribe to this query)

Command injection in Nagios XI prior to 5.5.11 allows an authenticated users to execute arbitrary remote commands via a new autodiscovery job.

Nagios Nagios Xi

Cross-site scripting (XSS) vulnerability in Nagios XI prior to 5.5.11 allows malicious users to inject arbitrary web script or HTML via the xiwindow parameter.

Nagios Nagios Xi

Authorization bypass in Nagios IM (component of Nagios XI) prior to 2.2.7 allows closing incidents in IM via the API.

Nagios Incident Manager

1 Github repository

SQL injection vulnerability in Nagios IM (component of Nagios XI) prior to 2.2.7 allows malicious users to execute arbitrary SQL commands.

Nagios Incident Manager

1 Github repository

Nagios IM (component of Nagios XI) prior to 2.2.7 allows authenticated users to execute arbitrary code via API key issues.

Nagios Incident Manager

1 Github repository

SQL injection vulnerability in Nagios XI prior to 5.5.11 allows malicious users to execute arbitrary SQL commands via the API when using fusekeys and malicious user id.

Nagios Nagios Xi

Privilege escalation in Nagios XI prior to 5.5.11 allows local malicious users to elevate privileges to root via write access to config.inc.php and import_xiconfig.php.

Nagios Nagios Xi

1 Github repository

diag_routes.php in pfSense 2.5.2 allows sed data injection. Authenticated users are intended to be able to view data about the routes set in the firewall. The data is retrieved by executing the netstat utility, and then its output is parsed via the sed utility. Although the commo...

Pfsense Pfsense 2.5.2

1 Metasploit module1 Github repository

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook